Hi
java.util.PropertyPermission "user.timezone", "write"; line not there in
catalina.policy file.
Should this line not need to be present for granting the pernission?
We have already used the TimeZone.set function in our codebase to set
Asia/India as timezone.
I haven't done a full code search yet in other web apps.
But our engineers where is that this a Kernal and Tomcat issue.
Is there possibilty for that?
Regards
On Sun, Oct 11, 2009 at 3:54 PM, Konstantin Kolinko
<knst.koli...@gmail.com>wrote:
> 2009/10/11 raghu gs <iamra...@gmail.com>:
> >
> > One vital information i forgot to provide previously is, Tomcat timezone
> is
> > correct till "Tomcat server startup in Ns" message.
> >
>
> I remember, that I have read once in this list, that in someone's
> configuration there was a web application that changed system
> timezone. That is, it called TimeZone.setDefault(..)
> and so affected all the other webapps on that Tomcat instance.
>
>
> You may
> A) try to undeploy some applications, and see whether the things are
> changing.
>
> or B) try to start Tomcat with java security enabled [1]
> (e.g. "catalina.sh start -security"), and edit catalina.policy file to
> forbid calls to TimeZone.setDefault(..), and see what application
> starts failing.
>
> The TimeZone.setDefault() call fails when the following permission is
> not granted:
> java.util.PropertyPermission "user.timezone", "write";
>
> With the default catalina.policy file (the one in Apache distributions
> of Tomcat -- I do not know whether your one is different) such calls
> will be forbidden for web applications, but allowed for the jars in
> ${catalina.home}/lib/
>
>
>
> [1] http://tomcat.apache.org/tomcat-6.0-doc/security-manager-howto.html
> [2]
> http://java.sun.com/javase/6/docs/technotes/guides/security/PolicyFiles.html
>
> Best regards,
> Konstantin Kolinko
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
> For additional commands, e-mail: users-h...@tomcat.apache.org
>
>
